Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-43974


MatrixSSL 4.0.4 through 4.5.1 has an integer overflow in matrixSslDecodeTls13. A remote attacker might be able to send a crafted TLS Message to cause a buffer overflow and achieve remote code execution. This is fixed in 4.6.0.


Published

2023-01-09T09:15:10.043

Last Modified

2025-03-06T16:15:37.880

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.1 (HIGH)

Weaknesses
  • Type: Primary
    CWE-190
  • Type: Secondary
    CWE-190

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application matrixssl matrixssl < 4.6.0 Yes

References